4 matches found
CVE-2023-37385 WordPress Consulting theme <= 6.5.6 - Local File Inclusion
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in StylemixThemes Consulting allows PHP Local File Inclusion.This issue affects Consulting: from n/a through 6.5.6...
CVE-2023-37385 WordPress Consulting theme <= 6.5.6 - Local File Inclusion
Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in StylemixThemes Consulting allows PHP Local File Inclusion.This issue affects Consulting: from n/a through 6.5.6...
CVE-2023-37385
CVE-2023-37385 affects Stylemixthemes Consulting (WordPress plugin/theme) up to version 6.5.6. The issue is an improper pathname restriction leading to PHP Local File Inclusion (path traversal). Fixed in 6.5.7. CVSS v3.1 base score 7.3 (HIGH); attack vector NETWORK, no user interaction required. ...
WordPress Consulting Theme 6.3.0 - 6.5.6 is vulnerable to Local File Inclusion
Software Consulting Type Theme Vulnerable versions 6.3.0 - 6.5.6 Fixed in 6.5.7 OWASP Top 10 A1: Injection Classification Local File Inclusion CVE CVE-2023-37385 Patch priority High CVSS severity High 7.3 Developer Claim ownership PSID dafa46bad8e4 Credits Dave Jong Patchstack Required privilege...